$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft File: bODpSXEbID5KyyK2gPP_9H7RbGE.mft (raw, json) Hash identifier: ROhty5ldyfENNDvHz41uzZlmCel+WF1KRMregoirahA= Subject key identifier: BE:41:19:90:47:DE:2B:42:77:5F:A2:ED:B7:28:AF:6C:F8:C8:68:A8 Authority key identifier: 6C:E0:E9:49:71:1B:20:3E:4A:CB:22:B6:80:F3:FF:F4:7E:D1:6C:61 Certificate issuer: /CN=A91BDC3F/serialNumber=6CE0E949711B203E4ACB22B680F3FFF47ED16C61 Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft Manifest number: E4 Signing time: Sat 05 Jul 2025 05:49:37 +0000 Manifest this update: Sat 05 Jul 2025 05:49:36 +0000 Manifest next update: Sat 12 Jul 2025 05:49:36 +0000 Files and hashes: 1: bODpSXEbID5KyyK2gPP_9H7RbGE.crl (hash: mUuMEHMR0Yuz/Dhc51EOiVU/z7mVBy4iGqMhwgKm+wI=) 2: 7980C32AA71B11EFA8320136C4F9AE02.roa (hash: svWCFcB6b/XkbZIPeHevXUk9kvL6MAqPQu9nAp05skM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.crl rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDC3F, serialNumber=6CE0E949711B203E4ACB22B680F3FFF47ED16C61 Validity Not Before: Jul 5 05:49:36 2025 GMT Not After : Jul 12 05:49:36 2025 GMT Subject: CN=6868bcf0-c442 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c8:c5:49:88:d4:bc:22:74:82:1a:8a:98:42: 7b:2e:0d:32:aa:00:38:28:31:05:f4:45:ae:64:ae: d2:60:0f:9b:20:ec:19:5a:8f:fa:f9:1a:22:9f:9d: ef:57:f7:a4:11:97:5c:38:11:60:ec:5b:b0:1c:99: 27:da:0f:cf:a8:21:27:8a:a3:c9:96:fd:65:e9:96: 1f:ef:8b:99:09:5d:53:a8:50:b6:9c:15:29:b9:19: eb:a7:c6:4b:25:0d:28:61:58:50:6e:bf:3c:5b:f9: 89:77:f9:42:0f:dd:5a:7b:0f:7b:ea:84:17:84:e3: c4:9f:e2:f8:0a:9a:95:a5:0f:5f:87:65:4e:08:23: 32:95:dd:6d:67:be:d0:53:c2:12:83:54:be:50:5a: 9c:bf:de:bf:99:da:59:70:b2:19:d2:a4:2b:37:d6: 1f:08:ce:fa:2a:89:53:8f:2d:1d:e8:5a:b4:44:05: 25:08:c3:0f:52:ea:26:c7:95:2e:13:5f:6d:98:74: 7d:95:05:79:95:78:10:20:b7:8d:ff:2d:26:9e:82: a2:aa:bd:67:e9:0e:00:23:ce:5d:6d:45:ea:66:31: 55:8c:a1:65:d4:f5:97:dd:4f:6f:b9:aa:83:42:c1: 11:e5:86:c5:82:21:53:cd:ca:e8:1f:b9:cc:6a:eb: 67:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:41:19:90:47:DE:2B:42:77:5F:A2:ED:B7:28:AF:6C:F8:C8:68:A8 X509v3 Authority Key Identifier: keyid:6C:E0:E9:49:71:1B:20:3E:4A:CB:22:B6:80:F3:FF:F4:7E:D1:6C:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:97:f3:d4:e4:8c:aa:b7:a4:6d:31:26:2f:20:d8:24:0e:ee: 06:06:c6:d1:c7:0b:60:eb:91:c8:94:50:d3:7e:b1:17:6c:33: ca:03:bf:0c:44:96:9d:ff:4d:48:51:ef:85:a1:90:96:36:37: 80:c6:65:c9:61:1a:32:11:aa:39:95:fe:13:1d:0d:12:fa:b3: 7f:7c:27:dd:72:59:1b:a0:13:e1:80:ca:13:cb:75:e1:f0:f0: 09:91:06:1c:de:47:7d:f5:b6:7e:d4:40:49:08:ce:c9:ba:ee: 4d:60:72:04:30:e5:cf:80:2b:b2:92:a9:23:61:a1:1d:ac:d6: 21:b0:ef:03:4a:99:5e:44:4a:0b:99:ba:0f:6a:5b:0d:a0:c6: d3:e3:aa:04:f3:27:b5:b5:51:b3:81:19:4d:59:1c:ef:df:91: 43:20:2f:9f:fb:b4:d4:b2:51:3b:94:9c:e2:be:8a:52:f0:2e: d7:db:60:28:d6:c7:7e:fc:23:03:85:e3:ef:8d:85:c7:47:32: b1:83:fd:7a:d4:24:e7:e8:07:81:ce:e2:32:05:ef:04:cb:18: 6c:49:b7:b8:36:54:fb:b7:22:9d:29:96:cc:8c:5e:89:ae:63: 56:7d:bd:42:a1:84:8b:30:41:26:3c:e6:48:0d:19:61:01:bc: 86:a8:98:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkRDM0YxMTAvBgNVBAUTKDZDRTBFOTQ5NzExQjIwM0U0QUNCMjJCNjgwRjNGRkY0 N0VEMTZDNjEwHhcNMjUwNzA1MDU0OTM2WhcNMjUwNzEyMDU0OTM2WjAYMRYwFAYD VQQDEw02ODY4YmNmMC1jNDQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApsjFSYjUvCJ0ghqKmEJ7Lg0yqgA4KDEF9EWuZK7SYA+bIOwZWo/6+Roin53v V/ekEZdcOBFg7FuwHJkn2g/PqCEniqPJlv1l6ZYf74uZCV1TqFC2nBUpuRnrp8ZL JQ0oYVhQbr88W/mJd/lCD91aew976oQXhOPEn+L4CpqVpQ9fh2VOCCMyld1tZ77Q U8ISg1S+UFqcv96/mdpZcLIZ0qQrN9YfCM76KolTjy0d6Fq0RAUlCMMPUuomx5Uu E19tmHR9lQV5lXgQILeN/y0mnoKiqr1n6Q4AI85dbUXqZjFVjKFl1PWX3U9vuaqD QsER5YbFgiFTzcroH7nMautn+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL5BGZBH 3itCd1+i7bcor2z4yGioMB8GA1UdIwQYMBaAFGzg6UlxGyA+SssitoDz//R+0Wxh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCREMzRi81Q0U4MTA0NjBF QjAxMUVGODcyRTgxMjdDNEY5QUUwMi9iT0RwU1hFYklENUt5eUsyZ1BQXzlIN1Ji R0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JPRHBTWEViSUQ1S3l5SzJnUFBfOUg3UmJHRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC REMzRi81Q0U4MTA0NjBFQjAxMUVGODcyRTgxMjdDNEY5QUUwMi9iT0RwU1hFYklE NUt5eUsyZ1BQXzlIN1JiR0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxl/PU5Iyqt6RtMSYvINgkDu4GBsbRxwtg65HIlFDTfrEXbDPKA78M RJad/01IUe+FoZCWNjeAxmXJYRoyEao5lf4THQ0S+rN/fCfdclkboBPhgMoTy3Xh 8PAJkQYc3kd99bZ+1EBJCM7Juu5NYHIEMOXPgCuykqkjYaEdrNYhsO8DSpleREoL mboPalsNoMbT46oE8ye1tVGzgRlNWRzv35FDIC+f+7TUslE7lJzivopS8C7X22Ao 1sd+/CMDhePvjYXHRzKxg/161CTn6AeBzuIyBe8EyxhsSbe4NlT7tyKdKZbMjF6J rmNWfb1CoYSLMEEmPOZIDRlhAbyGqJi/ -----END CERTIFICATE-----Generated at Sat Jul 5 21:56:59 2025 by rpki-client